all InfoSec news
159 - GitHub to GitLab RCE and a new PHP Supply Chain Attack [Bug Bounty Podcast]
Oct. 18, 2022, 8 p.m. | DAY[0]
DAY[0] www.youtube.com
Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/159.html
[00:00:00] Introduction
[00:01:01] New reward system to accelerate learning and growth on Detectify
[00:04:33] RCE via github import
[00:11:27] Securing Developer Tools: A New Supply Chain Attack on PHP
[00:17:32] FortiOS, FortiProxy, and FortiSwitchManager Authentication Bypass Technical Deep Dive [CVE-2022-40684]
[00:23:08] Apache Commons Text Interpolation leading to potential RCE [CVE-2022-42889]
attack bounty bug bug bounty github gitlab php podcast rce supply supply chain supply chain attack
More from www.youtube.com / DAY[0]
246 - Rust Memory Corruption??? [Binary Exploitation Podcast]
1 month, 3 weeks ago |
www.youtube.com
245 - A PHP and Joomla Bug and some DOM Clobbering [Bug Bounty Podcast]
1 month, 3 weeks ago |
www.youtube.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Information Security Engineers
@ D. E. Shaw Research | New York City
Cybersecurity Consultant- Governance, Risk, and Compliance team
@ EY | Tel Aviv, IL, 6706703
Professional Services Consultant
@ Zscaler | Escazú, Costa Rica
IT Security Analyst
@ Briggs & Stratton | Wauwatosa, WI, US, 53222
Cloud DevSecOps Engineer - Team Lead
@ Motorola Solutions | Krakow, Poland